kblog1

Dark Web News Analysis A post has been identified on a known cybercrime forum in which a threat actor is actively recruiting a partner with specific expertise in SQL injection attacks. The stated objective is to extract user data from an internal Customer Relationship Management (CRM) system. In a particularly ...

Dark Web News Analysis A threat actor on a known cybercrime forum is claiming to sell a massive database that they allege was stolen from a company or service named “Mychoice.” According to the seller’s post, the database contains a staggering 14 million records. While the specific data fields were ...

Dark Web News Analysis A threat actor on a known cybercrime forum is claiming to have leaked a database that they allege originates from Sandia, a financial intelligence platform. According to the post, the compromised data contains 3,726 rows of user information. The purportedly leaked data includes usernames, email addresses, ...

Dark Web News Analysis A threat actor on a known cybercrime forum is claiming to have leaked unauthorized SMTP access credentials that they allege belong to users of BIGLOBE, a major internet service provider in Japan. According to the post, the compromised data includes the necessary components for sending email ...

Dark Web News Analysis A new and highly advanced version of the Airavat Remote Access Trojan (RAT), dubbed the 2025 version, has been detected being shared and sold on a monitored hacker forum. According to the advertisement, this Android RAT is a sophisticated, multi-purpose tool designed for complete device takeover. ...

Dark Web News Analysis A new Android Remote Access Trojan (RAT), dubbed “DOGERat 2025,” has been detected being shared on a monitored hacker forum. According to the analysis, the new malware is a sophisticated tool designed to achieve a complete takeover of an infected Android device, giving a remote attacker ...

Dark Web News Analysis A threat actor on a known cybercrime forum is auctioning what they claim is unauthorized access to a Shopify business. According to the seller’s post, the business generates over $250,000 in revenue and has same-day Shopify Payments with card processing enabled. The actor makes the unusual ...

Dark Web News Analysis A threat actor on a known cybercrime forum is claiming to sell a database and associated access that they allege was stolen from a Canadian Shopify store. According to the seller’s post, the package includes a database containing 73,000 rows of customer data, as well as ...

Dark Web News Analysis A threat actor on a known cybercrime forum is auctioning what they claim is unauthorized RDP (Remote Desktop Protocol) access with “Domain Admin” privileges to a Canadian company. In a particularly alarming detail, the seller’s post specifies that the access is to the company’s “Trend Micro ...